本帖最后由 小飞侠.net 于 2017-11-20 09:26 编辑
X-Sec Antivirus ---(Windows 10 Creators Update(Redstone 2)....):
Start Time: Fri Nov 17 22:03:31 2017
Scan Type: Custom Scan
Scan Target: C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa
Heuristic Engine: Enabled
Cloud Engine: Enabled
Resolve Threats: Scan only
Database Version: 2017.11.16.01
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (13).bin.DOC -> Cloud:Macro.MSWord.Downloader
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (14).bin.exe -> Cloud:Trojan.Win32.Hancitor
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (15).bin.DOC -> Cloud:Macro.MSWord.Downloader
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (16).bin.exe -> Cloud:Trojan.Win32.Hancitor
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (17).bin.DOC -> Cloud:Macro.MSWord.Downloader
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (18).bin.sys -> Cloud:Trojan.Win32.Hancitor
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (19).bin.exe -> Cloud:Trojan.Win32.Generic
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (2).bin.DOC -> Cloud:Macro.MSWord.Downloader
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (20).bin.DOC -> Cloud:Macro.MSWord.Downloader
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (21).bin.DOC -> Cloud:Macro.MSWord.Downloader
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (22).bin.html -> Cloud:Trojan.Script.Downloader
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (23).bin.exe -> Cloud:Trojan.Win32.LokiBot
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (25).bin.exe -> Cloud:Trojan.Win32.Injector
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (30).bin.exe -> Cloud:Trojan.Win32.Generic
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (33).bin.exe -> Cloud:Trojan.Win32.Injector
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (40).bin.exe -> Cloud:Trojan.Win32.Generic
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (41).bin.S -> Heur:Trojan.Script.Obfus.Generic
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (42).bin.exe -> Cloud:Trojan.Win32.Injector
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (46).bin.exe -> Cloud:Trojan.Win32.Emotet
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (49).bin.rtf -> Cloud:Exploit.RTF.CVE-2017-0199
C:\Users\Admin\Desktop\AVtest100\3DBED2D7Up1117aaa\Virus49x_1117\Virus49x 1117\Virus (9).bin.exe -> Trojan.Win32.Generic.Ec
Elapsed Time: 00:01:56
Total File: 49
Skipped File: 4
Infected File: 21
Start Time: Mon Nov 20 09:23:55 2017
Scan Type: Custom Scan
Scan Target: C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119
Heuristic Engine: Enabled
Cloud Engine: Enabled
Resolve Threats: Scan only
Database Version: 2017.11.16.01
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(1).vir.rtf -> Cloud:Exploit.RTF.CVE-2017-0199
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(11).vir.JS -> Heur:Malware.Script.Generic
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(12).vir.exe -> Cloud:Trojan.Win32.Generic
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(14).vir.exe -> Hacktool.Win32.Confuser.Aa
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(15).vir -> Cloud:Trojan.Script.Downloader
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(17).vir.JS -> Cloud:Trojan.Script.Downloader
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(2).vir.exe -> Cloud:Trojan.Win32.Injector
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(21).vir.exe -> Cloud:Trojan.Win32.Generic
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(22).vir.exe -> Cloud:Trojan.Win32.Injector
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(23).vir.dll -> Cloud:Trojan.Win32.Banker
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(25).vir.exe -> Cloud:Trojan.Win32.Injector
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(26).vir.exe -> Cloud:Trojan.Win32.Injector
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(28).vir.exe -> Cloud:Trojan.Win32.Injector
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(29).vir.exe -> Cloud:Trojan.Win32.Injector
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(30).vir.exe -> Cloud:Trojan.Win32.Injector
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(32).vir.exe -> Cloud:Trojan.Win32.Autoit
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(33).vir.dll -> Heur:Trojan.Downloader.Gen.4
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(7).vir.exe -> Cloud:Trojan.Win32.Dyloader
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(9).vir.exe -> Cloud:Trojan.Win32.Downloader
Elapsed Time: 00:01:17
Total File: 35
Skipped File: 2
Infected File: 19
瑞星---(Windows 10 Creators Update(Redstone 2)....):云引擎(开)RDM+(开)
瑞星反恶软引擎命令行扫描器(社区交流版)
编译于:Sep 22 2017 15:07:50
提示:
- 本工具供社区交流使用,请勿用于其他用途
- 本工具没有恶意软件删除、清除、隔离功能
- 本工具包含开发中的新特性,结果仅供参考
* 命令行中的选项开关:-output-json -log=C:\瑞星RDM+引擎\ScanLog_171120090246.log
* 获取恶软签名库最新版本 ...
* 下载恶软签名库配置文件 ...
* 创建恶软签名库升级组件 ...
* 计算并下载增量文件 ...
* 升级恶软签名库 ...
* 恶软签名库升级成功
* 扫描目标 : (1) C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119
* 加载恶软签名库: C:\瑞星RDM+引擎/malware.rmd
* 恶软签名库加载成功,发布序号为 3193
* 读取恶软签名库配置 ...
* 云辅助扫描组件初始化失败.
* 初始化引擎环境 ...
* 初始化引擎环境 ...
* 初始化引擎环境 ...
* 初始化引擎环境 ...
* 初始化引擎环境 ...
* 初始化引擎环境 ...
* 初始化引擎环境 ...
* 初始化引擎环境 ...
扫描开始: Mon Nov 20 09:03:02 2017
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(1).vir.rtf","infect":{"engine":"sha1","signature":"c2hhMTr7tyYbKqGsIYwIv9PyMvHu2nTFEA","threat":"Exploit.Generic!8.3E1"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(11).vir.JS","infect":{"engine":"topis","signature":"bF9MW422UrO","threat":"Trojan.Obfuscated!8.4C"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(16).vir.rtf","infect":{"engine":"classic","threat":"Exploit.CVE-2017-0199.Gen!1.AECA"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(15).vir","infect":{"engine":"sha1","signature":"c2hhMTpM/Y56mwbDN1M4aarA6xEOojJy+A","threat":"Downloader.Agent!8.B23"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(10).vir.exe","infect":{"engine":"rdmk","signature":"cmRtazp+S/3f56GDipOTvs+aREZZ","threat":"Malware.Heuristic!ET#97%"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(14).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTrzW67sYjUU4ejoLao4x1D1FNa98Q","threat":"Ransom.FileCryptor!8.1A7"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(12).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTqP+r+LoIHz/fHYG0I0TcRuslKvvA","threat":"Backdoor.Androm!8.113"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(17).vir.JS","infect":{"engine":"sha1","signature":"c2hhMTrSEJXqf0AkAvBKnoFx50edQAh5Cw","threat":"Downloader.Nemucod!8.34"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(18).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTo0e6WY4dSN404AjWlmP8P3JPg6JQ","threat":"Trojan.Kryptik!8.8"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(24).vir.Linux_ELF","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(19).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTozyXzjAqtysct5QWgJIPmXPJwZEQ","threat":"Trojan.Kryptik!8.8"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(2).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTqQtPuBNmwfHKSa0AM5qpkHvCWD9Q","threat":"Trojan.GenKryptik!8.AA55"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(21).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTq7M1rPBo4yPoYZj/zN3RkC+6II9g","threat":"Trojan.Kryptik!8.8"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(25).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTp8IucLtgtAaZHEAkAboh8pdeegew","threat":"Trojan.GenKryptik!8.AA55"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(28).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTp5ZtskfPEjsx+JcVuFEKrrvRThhQ","threat":"Trojan.Kryptik!8.8"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(23).vir.dll","infect":{"engine":"sha1","signature":"c2hhMTpNxW7IJdh3cY2F7vDV8FCvpRyMow","threat":"Spyware.Banker!8.8D"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(29).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTqYE2pfU0JJRJsCUo/AxRvhR9ykyA","threat":"Trojan.TrickBot!8.E313"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(27).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTqEgExSO4MIJz+kusYHrzPc5uYLcA","threat":"Malware.Undefined!8.C"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(26).vir.exe","infect":{"engine":"c64","signature":"YzY0OpA0j9R7im9t","threat":"Malware.Undefined!8.C"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(22).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTrCzc1Z9liTT609REUue4lbvLS6yg","threat":"Trojan.TrickBot!8.E313"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(20).vir.exe","infect":{"engine":"rdmk","signature":"cmRtazpYzvzabDU4yNZXOzrOZ6Kb","threat":"Malware.Heuristic!ET#97%"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(3).vir.exe","infect":{"engine":"c64","signature":"YzY0OtFk7X4nHr7C","threat":"Trojan.Kryptik!8.8"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(30).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTr35mNqXYjGVjEYbeYImHLBXiix9w","threat":"Trojan.Injector!8.C4"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(31).vir.exe","infect":{"engine":"rdmk","signature":"cmRtazr85eLhciCwE2PApV/Y0JGD","threat":"Malware.Heuristic!ET#100%"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(32).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTqLZrPrqSpK6pYWPCS925he9zkGTw","threat":"Malware.Undefined!8.C"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(33).vir.dll","infect":{"engine":"sha1","signature":"c2hhMTqr2U8Gybnf2bTKfE4I0KW22LrKbg","threat":"Malware.Undefined!8.C"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(35).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTr5YBPiIbUYiyxVLDCMvCVlN+1t7A","threat":"Malware.Undefined!8.C"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(5).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTqLz6irk3201R6y0OIWQkwVOA2yWA","threat":"Stealer.Agent!8.C2"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(4).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTpEvQYMabNB6nnQtvKzdEkKjjSFHQ","threat":"Backdoor.Bot!1.6675"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(6).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTrMipJ0Mgwnl6SUdEjiQB0Ykw1U8A","threat":"Malware.Undefined!8.C"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(13).vir.APK","type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(7).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTogdontbnyjaxNHX9Nk8IhEeI12nw","threat":"Backdoor.Poison!8.2D7"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(9).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTq9bBwFIhzJ77gvoxA/HgWiOZV1+A","threat":"Trojan.CoinMiner!8.30A"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(8).vir.exe","infect":{"engine":"sha1","signature":"c2hhMTr5YBPiIbUYiyxVLDCMvCVlN+1t7A","threat":"Malware.Undefined!8.C"},"type":"scan"}
{"filename":"C:\\Users\\Admin\\Desktop\\AVtest100\\2606AFC8Up1119\\Virus35x 1119\\Virus(34).vir.dll","type":"scan"}
扫描结束: Mon Nov 20 09:03:04 2017
总扫描耗时: 0:2:11(m:s:ms)
总扫描对象: 41
总扫描文件: 35
总恶意文件: 32
有效检出率: 91.43%
Emsisoft Emergency Kit - 版本 2017.10
上次更新: 2017/11/20 8:30:08
用户帐号: TECLAST\Admin
电脑名称: TECLAST
操作系统版本: Windows 10x64
扫描设置:
扫描方式: 自定义扫描
对象: Rootkits, 内存, C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\
检测流氓软件(PUPs): On
扫描压缩包: On
扫描邮件存档: On
ADS数据流: On
文件扩展名过滤: Off
直接磁盘访问: Off
扫描开始于: 2017/11/20 8:59:10
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(1).vir.rtf -> (objdata) -> (Embedded DocFile g) 发现病毒: Exploit.CVE-2017-0199.Gen (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(11).vir.JS -> (INFECTED_JS) 发现病毒: JS:Trojan.Cryxos.976 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(16).vir.rtf -> (objdata) -> (Embedded DocFile g) 发现病毒: Exploit.CVE-2017-0199.Gen (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(30).vir.exe -> (NSIS o) -> lzma_nsis0002 发现病毒: Gen:Variant.Symmi.80058 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(12).vir.exe 发现病毒: Trojan.GenericKD.12581905 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(14).vir.exe 发现病毒: Trojan.Ransom.Wndi (A) [291507]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(17).vir.JS 发现病毒: Trojan.JS.Agent.PYX (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(2).vir.exe 发现病毒: Trojan.GenericKD.12573993 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(21).vir.exe 发现病毒: Trojan.GenericKD.12582436 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(22).vir.exe 发现病毒: Gen:Variant.Zusy.264791 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(25).vir.exe 发现病毒: Trojan.GenericKD.12582560 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(26).vir.exe 发现病毒: Gen:Variant.Mikey.74650 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(27).vir.exe 发现病毒: Gen:Variant.Mikey.74650 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(28).vir.exe 发现病毒: Trojan.Agent.CQMJ (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(23).vir.dll 发现病毒: Gen:Variant.Symmi.60013 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(3).vir.exe 发现病毒: Gen:Variant.Midie.42055 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(29).vir.exe 发现病毒: Gen:Variant.Zusy.264791 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(34).vir.dll 发现病毒: Gen:Variant.Graftor.419396 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(5).vir.exe 发现病毒: Trojan.RebornStealer (A) [289543]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(7).vir.exe 发现病毒: Trojan.GenericKD.6207845 (B) [krnl.xmd]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(6).vir.exe 发现病毒: Gen:Trojan.Heur.GM.0440044002 (B) [krnl.xmd]
已扫描 1691
发现 21
扫描完成后: 2017/11/20 8:59:31
扫描时间: 0:00:21
ESET Smart Security Premium 64位(高级启发式(Y)+压缩文件(Y)+自解压加壳(Y)+DNY智能签名(Y)++(Windows 10 Creators Update(Redstone 2)....):Found nothing
日志
正在扫描日志
检测引擎的版本: 16432P (20171118)
日期: 2017/11/20 时间: 8:54:37
已扫描的磁盘、文件夹和文件: C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(10).vir.exe - Win32/Packed.Themida 可疑应用程序 的变种 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(11).vir.JS - VBS/Obfuscated.G 特洛伊木马 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(12).vir.exe - Win32/TrojanDownloader.Zurgop.CO 特洛伊木马 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(13).vir.APK > ZIP > classes.dex - Android/Spy.Banker.QL 特洛伊木马 - 扫描完成后再选择处理方式
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(14).vir.exe - MSIL/Filecoder.KQ 特洛伊木马 的变种 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(15).vir - PowerShell/TrojanDownloader.Agent.YP 特洛伊木马 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(17).vir.JS - JS/TrojanDownloader.Nemucod.CYT 特洛伊木马 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(18).vir.exe - Win32/Kryptik.FLHK 特洛伊木马 的变种 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(2).vir.exe - Win32/Injector.DTNV 特洛伊木马 的变种 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(21).vir.exe - MSIL/Kryptik.LLL 特洛伊木马 的变种 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(22).vir.exe - Win32/TrickBot.Z 特洛伊木马 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(23).vir.dll - Win32/Spy.Banker.ADYU 特洛伊木马 的变种 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(25).vir.exe - Win32/GenKryptik.BEGV 特洛伊木马 的变种 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(26).vir.exe - Suspicious Object - 扫描完成后再选择处理方式
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(27).vir.exe - Suspicious Object - 扫描完成后再选择处理方式
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(28).vir.exe - Win32/Kryptik.FZDF 特洛伊木马 的变种 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(29).vir.exe - Win32/TrickBot.Z 特洛伊木马 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(30).vir.exe > NSIS > reallotments.dll - Win32/Injector.DTNN 特洛伊木马 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(32).vir.exe > WINRARSFX > CMT - RAR/Agent.CE 特洛伊木马 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(32).vir.exe > WINRARSFX > ntp.dat - Win32/Injector.Autoit.CNO 特洛伊木马 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(4).vir.exe - MSIL/GenKryptik.BEKJ 特洛伊木马 的变种 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(5).vir.exe - MSIL/PSW.Agent.QKJ 特洛伊木马 的变种 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(7).vir.exe - Win32/TrojanDownloader.Agent.DSK 特洛伊木马 的变种 - 通过删除清除 [1]
C:\Users\Admin\Desktop\AVtest100\2606AFC8Up1119\Virus35x 1119\Virus(9).vir.exe - MSIL/CoinMiner.AFI 特洛伊木马 的变种 - 通过删除清除 [1]
已扫描的对象数: 1343
发现的威胁数: 24
已清除对象数: 21
完成时间: 8:55:54 总扫描时间: 77 秒 (00:01:17)
备注:
[1] 由于对象中仅包含病毒主体,因此已被删除。
火绒安全---( Windows 7 Ultimate with SP1 简体中文旗舰版....):部分未知文件已发送到seclab@huorong.cn,等处理中。。。
病毒库:2017/11/17 17:05
开始时间:2017/11/20 08:43
总计用时:00:00:20
扫描对象:1578个
扫描文件:35个
发现风险:6个
已处理风险:0个
发现系统修复项:0个
处理系统修复项:0个
文件名称: C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\Virus35x 1119.rar
文件大小: 20.7 MB (21,795,672 字节)
修改时间: 2017年11月20日,08:38:21
MD5: 89B2AB970FC7D744A82D923C8814FE14
SHA1: FEFEB1F4EE70169B44399BBF3A6BEB1A93A0F881
SHA256: 395B4ACB87F440D6F2CA061E331C9530FACB94D4576A131C0A940A9EE4B5F9B5
SHA512: DF7FF9A484F7B9AA70B9143D4929D61DB0ACC714FCF23A2B97BC7F89AF42E0E37D1B2265BC44CEE956EF3EF1FFC589CC3835889C1112F2DD13C2D98F3F9251E8
CRC32: 2606AFC8
计算时间: 0.92s
病毒详情
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\Virus35x 1119\Virus(11).vir.JS, 病毒名:SVM:TrojanDownloader/JS.MalBehav.gen!D, 病毒ID:[e27d0b2a9482fa98], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\Virus35x 1119\Virus(10).vir.exe, 病毒名:TrojanDownloader/Sqldown.d, 病毒ID:[49baa8e2b8e86999], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\Virus35x 1119\Virus(26).vir.exe, 病毒名:HEUR:VirTool/Obfuscator.gen!C, 病毒ID:[9f7c74f7afee22c], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\Virus35x 1119\Virus(3).vir.exe, 病毒名:HVM:Trojan/Injector.gen!A, 病毒ID:[cc4a875f53a5d678], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\Virus35x 1119\Virus(31).vir.exe, 病毒名:HVM:VirTool/Obfuscator.gen!A, 病毒ID:[b27d4294cde6a1ec], 处理结果:已忽略
风险路径:C:\Users\xfxnet2000\Desktop\MX Player Pro\刘1\艾2\61647309\85014225\孙3\Windows Defender\AVTestZipX\Virus35x 1119\Virus(27).vir.exe, 病毒名:HEUR:VirTool/Obfuscator.gen!C, 病毒ID:[9f7c74f7afee22c], 处理结果:已忽略
|